Class ServerHttpSecurity.OAuth2ResourceServerSpec
java.lang.Object
org.springframework.security.config.web.server.ServerHttpSecurity.OAuth2ResourceServerSpec
- Enclosing class:
- ServerHttpSecurity
Configures OAuth2 Resource Server Support
-
Nested Class Summary
Modifier and TypeClassDescriptionclass
Configures JWT Resource Server Supportfinal class
Configures Opaque Token Resource Server support -
Constructor Summary
-
Method Summary
Modifier and TypeMethodDescriptionaccessDeniedHandler
(ServerAccessDeniedHandler accessDeniedHandler) Configures theServerAccessDeniedHandler
to use for requests authenticating with Bearer Tokens.and()
Configures theServerAuthenticationEntryPoint
to use for requests authenticating with Bearer Tokens.authenticationFailureHandler
(ServerAuthenticationFailureHandler authenticationFailureHandler) authenticationManagerResolver
(ReactiveAuthenticationManagerResolver<org.springframework.web.server.ServerWebExchange> authenticationManagerResolver) Configures theReactiveAuthenticationManagerResolver
bearerTokenConverter
(ServerAuthenticationConverter bearerTokenConverter) Configures theServerAuthenticationConverter
to use for requests authenticating with Bearer Tokens.protected void
configure
(ServerHttpSecurity http) jwt()
Enables JWT Resource Server support.jwt
(Customizer<ServerHttpSecurity.OAuth2ResourceServerSpec.JwtSpec> jwtCustomizer) Enables JWT Resource Server support.Enables Opaque Token Resource Server support.opaqueToken
(Customizer<ServerHttpSecurity.OAuth2ResourceServerSpec.OpaqueTokenSpec> opaqueTokenCustomizer) Enables Opaque Token Resource Server support.
-
Constructor Details
-
OAuth2ResourceServerSpec
public OAuth2ResourceServerSpec()
-
-
Method Details
-
accessDeniedHandler
public ServerHttpSecurity.OAuth2ResourceServerSpec accessDeniedHandler(ServerAccessDeniedHandler accessDeniedHandler) Configures theServerAccessDeniedHandler
to use for requests authenticating with Bearer Tokens. requests.- Parameters:
accessDeniedHandler
- theServerAccessDeniedHandler
to use- Returns:
- the
ServerHttpSecurity.OAuth2ResourceServerSpec
for additional configuration - Since:
- 5.2
-
authenticationEntryPoint
public ServerHttpSecurity.OAuth2ResourceServerSpec authenticationEntryPoint(ServerAuthenticationEntryPoint entryPoint) Configures theServerAuthenticationEntryPoint
to use for requests authenticating with Bearer Tokens.- Parameters:
entryPoint
- theServerAuthenticationEntryPoint
to use- Returns:
- the
ServerHttpSecurity.OAuth2ResourceServerSpec
for additional configuration - Since:
- 5.2
-
authenticationFailureHandler
public ServerHttpSecurity.OAuth2ResourceServerSpec authenticationFailureHandler(ServerAuthenticationFailureHandler authenticationFailureHandler) -
bearerTokenConverter
public ServerHttpSecurity.OAuth2ResourceServerSpec bearerTokenConverter(ServerAuthenticationConverter bearerTokenConverter) Configures theServerAuthenticationConverter
to use for requests authenticating with Bearer Tokens.- Parameters:
bearerTokenConverter
- TheServerAuthenticationConverter
to use- Returns:
- The
ServerHttpSecurity.OAuth2ResourceServerSpec
for additional configuration - Since:
- 5.2
-
authenticationManagerResolver
public ServerHttpSecurity.OAuth2ResourceServerSpec authenticationManagerResolver(ReactiveAuthenticationManagerResolver<org.springframework.web.server.ServerWebExchange> authenticationManagerResolver) Configures theReactiveAuthenticationManagerResolver
- Parameters:
authenticationManagerResolver
- theReactiveAuthenticationManagerResolver
- Returns:
- the
ServerHttpSecurity.OAuth2ResourceServerSpec
for additional configuration - Since:
- 5.3
-
jwt
Enables JWT Resource Server support.- Returns:
- the
ServerHttpSecurity.OAuth2ResourceServerSpec.JwtSpec
for additional configuration
-
jwt
public ServerHttpSecurity.OAuth2ResourceServerSpec jwt(Customizer<ServerHttpSecurity.OAuth2ResourceServerSpec.JwtSpec> jwtCustomizer) Enables JWT Resource Server support.- Parameters:
jwtCustomizer
- theCustomizer
to provide more options for theServerHttpSecurity.OAuth2ResourceServerSpec.JwtSpec
- Returns:
- the
ServerHttpSecurity.OAuth2ResourceServerSpec
to customize
-
opaqueToken
Enables Opaque Token Resource Server support.- Returns:
- the
ServerHttpSecurity.OAuth2ResourceServerSpec.OpaqueTokenSpec
for additional configuration
-
opaqueToken
public ServerHttpSecurity.OAuth2ResourceServerSpec opaqueToken(Customizer<ServerHttpSecurity.OAuth2ResourceServerSpec.OpaqueTokenSpec> opaqueTokenCustomizer) Enables Opaque Token Resource Server support.- Parameters:
opaqueTokenCustomizer
- theCustomizer
to provide more options for theServerHttpSecurity.OAuth2ResourceServerSpec.OpaqueTokenSpec
- Returns:
- the
ServerHttpSecurity.OAuth2ResourceServerSpec
to customize
-
configure
-
and
-